Hey everyone! I made a mistake and opened a suspect email attachment from tutamail that talked about a misformatted message. I know I shouldn't have done it, but I did. A window flashed on my screen so quickly that I couldn't even read it. Now I'm worried I might have run some malicious code. I've heard that antivirus apps aren't really necessary on Linux, so I'm looking for advice. Is this something I should be worried about? Should I scan my system or take other precautions? I did use ClamTk to scan my home directory but couldn't find a full system scan option. Any suggestions would be greatly appreciated!
3 Answers
Honestly, you might be fine! Sometimes, malicious code doesn't work as intended on Linux, especially if it's from a non-expecting email. If you've got Timeshift set up, you might consider rolling back if you start noticing issues. Better safe than sorry, right?
You can run the command `sudo find / -type f -mmin -180` to see files modified in the last three hours. This helps check if anything suspicious has been altered. However, keep in mind that most malware doesn't target Linux specifically, and users of this OS are a lower target for attacks. If you're still concerned, consider forwarding the email to someone knowledgeable to evaluate it further.
It's unlikely that a bad attachment will compromise your entire system. They typically can only modify files within the app's permission scope. But it's a good idea to log out of online accounts and change your passwords. Also, check your shell files for any strange commands or suspicious browser extensions that could be at risk.
I have a recovery point too, but I'm thinking a full wipe and reinstall would be the safest route for peace of mind.